forked from jaymzh/pius
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Changelog
317 lines (291 loc) · 10.1 KB
/
Changelog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
Unreleased
Released:
phil@ipom.com
- Fix crash in `-e` mode. Fixes #28.
2.2.2
Released: 1/17/15
phil@ipom.com
- Make output of -T clearer, add instructions to change default mail. Fixes #23.
- Update pius.spec to handle build changes. Fixes #18.
oleander@oleander.cc
- Handle PINENTRY_LAUNCHED & PROGRESS.
sebastian@karotte.org
- add --force-signer option to force specific keyid for signing
2.2.1
Released: 10/08/15
phil@ipom.com
- Fix gpg version matching on Mac
- Fix crashing when we don't match version
- Change debug logging of commands to strings instead of lists so users
can copy/paste when debugging
- handle agent errors better on 2.1
- more clear errors for various agent issues
brian.andrew@brianandjenny.com
- fix command debug logging in libpius.signer
- fix output of keys in verbose mode (we were missing the first one)
- fix gpg2 interaction on Mac
- fix gpg2 for 2.0.x users
2.2.0
Released: 10/02/15
phil@ipom.com
[meta]
- significant refactoring of code into more classes
- add pius-report
- add support for gpg2
[pius]
- fix crash on lack of ~/.pius directory
- move README to MD format
- fix various holes where we can nuke the user's trust database
- massive lint/style cleanup
- change the default mode use a the gpg-agent
[pius-keyring-mgr]
- refactor to not use subshells
- massive lint/style cleanup
- fix various holes where we can nuke the user's trust database
- add new "raw" mode for organizers to do direct keyring manipulation
2.1.1
Released: 04/07/15
pmhahn@pmhahn.de
[pius]
- Fix crashing bug
2.1.0
Released: 03/09/15
phil@ipom.com
[pius]
- significant refactor into modules
- move to only using long keyids - short keyids are no longer safe
- fix interactive signing
- use .pius/piusrc instead of .pius
- fix various warnings/errors
- add tracking of signatures
git@cad.cx
[pius-party-worksheet]
- Fixes syntax error from use of deprecated unwrapped qw()
pmhahn@pmhahn.de
[pius]
- Better error on GnuPG card issues
- Remove use of various intermediate shells
- Clean up quoting
- Avoid a possible deadlock
- Fix help message
matt@mattb.net.nz
[pius]
- Support attaching policy URLs to signatures.
bex@Brians-MacBook-Pro.local
[pius]
- Fix count an pluralization of number of UIDs to sign (off by one error)
2.0.11
Released: 11/24/13
phil@ipom.com
[pius]
- improve various help and error messages
- add explanations of the cert-levels (closes #5)
- add signing key to output filename (closes #4)
- better handling of UID indexes (closes #13)
2.0.10
Released: 03/29/13
phil@ipom.com
[pius]
- Changed default email port to submission
- Changed TLS to default to on
- Skip expired UIDs
- Recognized old-style keys (Fixes regression #3286119)
[pius-keyring-mgr]
- fix typo/spacing in outgoing emails
- add ability to ignore certain emails/fps
- check for a key on the keyring before fetching it from the server
- ignore old-style keys now that keyservers don't support them anymore
- prune should print keys in sorted order
dougb@dougbarton.us
[pius]
- Don't expect PGP to create rings for us, since gpg2 doesn't.
2.0.9
Released: 03/12/11
phil@ipom.com
- Provide better error handling for bad mailserver data from users. Thanks to
kc@kcbraunschweig.com for the reports and debugging.
- Provide option to not sort the keyring. Fixes #3182115.
- Added pius-keyring-mgr, a new utility for managing keyrings, mostly useful
for party organizers
- Added pius-party-worksheet. Previously this was offered on the site, but not as
part of this package. Generates party worksheets.
szamcsi@users.sourcforge.net:
- Fix passphrase checking for users who have 'armor' in their gpg configs. Fixes
#3073359.
tomk@gentoo.org
- Fix reading of keyring with GPG >= 2.0.10. Fixes #3073359.
- Help and README updates. Fixes #3182019 and #3182028)
2.0.8
Released: 09/19/10
phil@ipom.com
- Don't lose keyids just because the UID string happens to be the same. Fixes
#3067127.
- We need to remove the signed files while we still have the right state to do
so. Additionally, don't remove keys if we haven't done anything with them.
Fixes #3067157.
2.0.7
Released: 03/04/10
phil@ipom.com
- Don't attempt to delete things we didn't create. Fixes #2962342.
- Provide a useful error when we can't find the gpg binary. Fixes #2962341.
2.0.6
Released: 03/01/10
phil@ipom.com
- When signing all keys on a keyring, sort them first.
- Stop QP-encoding the key, as it prevents people from manually doing
gpg -d <encrypted_file> | gpg --import
since the decrypted payload is a MIME message with QP-encoding. They need to
use an intelligent MTA, or mime_dump, and this is confusing some users. See
the note in the code, but since this is armored in encrypted output, it
should be safe.
- QP-encode the body... especially since we claim it's QP
- Remove the signed, but unencrypted files (potential security hole fixed here)
- Add a note to the emails that PIUS generated them, for clarity.
- Use application/pgp-keys for the signed key (more RFC complaint and provides
Evolution compatibility). Thanks to daniel@gimpelevich.san-francisco.ca.us for
point this out.
2.0.5
Released: 02/27/10
phil@ipom.com
- Encode keys for quoted-printable before sending them that way.
(closes #2960095)
- Prompt for a sign-level rather than 'y' or 'n', allowing for different levels
per key. (closes #2960103)
- Remove help text that claimed a local mail server is required for mailing off
keys - this hasn't been true for a while (thanks to kcbraunschweig@gmail.com)
2.0.4
Released: 02/13/10
matt@mattb.net.nz
- Make pius respect the GNUPGHOME environment variable
phil@ipom.com
- Add support for a config file. Based heavily on a patch by matt@mattb.net.nz
- Fix default GNUPGHOME to use $HOME rather than ~/
2.0.3
Released: 04/26/09
- Fix typo in exception name
- Add newline between keys
2.0.2
Released: 04/22/09
phil@ipom.com
- Catch the case where a users' public key isn't on the keyring and report it
to the user instead of just failing (reported by phil.pennock at spodhuis.org)
- Handle expired subkeys on the _signers'_ key (reported by phil.pennock at
spodhuis.org)
- Specify the key to sign with incase there are two private keys and both of
them happen to be on the public ring as well. (reported by phil.pennock at
spodhuis.org)
- Catch the case when the key we're signing doesn't have an encryption subkey
but we're doing PGP/Mime
2.0.1
Released: 02/28/09
phil@ipom.com
- Fix bug where pius would occasionally report a good key as bad
2.0.0
Released: 02/07/09
phil@ipom.com
- Add support for PGP/Mime, make it default
- Significant improvement to error checking and handling of gpg calls
- Minimize keys in import
- Better input checking
- Various code cleanups
- Support named interpolation in email templates
- Use proper extension for our tmp keyring
- Change default tmp/out directories to something more sane
- Fix handling of mode (-p, -i, -a)
- Make cache_passphrase mode default
- Add prompt about sending email if user didn't specify
- Move import of keyring to end
- Only import pexpect if we need it
- Add support for STARTTLS and SMTPAUTH when sending email
- Guard main() in an if __name__ == '__main__' to allow pydoc to work on pius
- Added a spec file
- Add notes to the README on how to write custom emails
1.7
Released: 02/06/09
phil@ipom.com
- Adjust regex for email address to be much less restrictive
1.6
Released: 02/02/09
phil@ipom.com
- fix a debug line
- fix a bug where we think a key is bad just because it has one expired subkey.
1.5
Released: 02/01/09
phil@ipom.com
- don't include full file path in mime headers, just filename
- add configuration for specifying mail server host/port
- clean up some error messages
- add some hints to the option parser
- use parser.error instead of print/exit for option issues
- Significantly better checking on commandline options
- Handle bad UIDs passed by the user smoothly
- Some code refactoring
1.4
Released: 01/28/09
phil@ipom.com
- don't try to email if encryption failed.
1.3
Released: 01/28/09
phil@ipom.com
- add propfer filename to mime headers -phil
- fix a warning
- add some spacing and comments
- adding support for utf8/paryn/whatever in comments
- More fixes for UTF-8/special chars
- handle expired subkeys nicely
- When using override_email, make sure we put that in the headers not just the envelope
- some helpful info in help
1.2
Released: 11/22/08
phil@ipom.com
- encrypt to ascii-armored
- add option to import keyring
- add todo
- Handle UIDs without email addresses
- Add option to try signing all keys on a keyring (-A)
- Add 'quit' option to the "Have you verified this user/key?" prompt
- Significantly improve parsing in get_uids()
- Name files for conflicting emails *much* better (foo_2.asc, foo_3.asc, instead of foo.asc_2, foo.asc_2_2)
- Name encrypted files MUCH better (foo_ENCRYPTED.asc instead of foo.asc.asc)
- Better error handling on encryption errors
- When getting all keys from the keyring (-A) use short keyid
- a few additional fixes for UIDs without email addresses
- much better help messages for options
- fix buggy error message on keyring not existing
- Add abaility to email off signed keys to respective emails
- allow users to use tilde-expansion in keyring paths
- update TODO list
- alphabetize imports
- update TODO
- Put default email text in a variable
- Add ability to override email text
- Add ability to print default email text
- Add ability to override email To
- Add doc strings
- Abstract commonly used gpg options into variables
- minor cleanups in sign_all_uids()
- remove unused code
- separate printing of filenames into --verbose option
1.1
Released 11/20/08
phil@ipom.com
- get FD stuff working for -p
- start working on FD stuff for -a
- fix a variety of pathing bugs
- make sign_uid_expect return the right vals
- fix output to use --no-tty where necessary
- tons of cleanups
- add new use-agent mode (-a)
- tmpdir is now configurable (-t)
- outdir is now configurable (-o)
- gpg bin is now configurable (-b)
- sig level is now configurable (-l)
- pius can now optionally encrypt the files for you (-e)
- stop using the special word 'file' as a variable
- better debugging
- handle PGP2 keys better
- cleanup all tmp files and keyrings
- fix usage info
1.0
phil@ipom.com
- Original version... floating around in various forms for a long time